CVE-2024-47939

Summary

Stack-based buffer overflow vulnerability exists in multiple laser printers and MFPs which implement Ricoh Web Image Monitor. If this vulnerability is exploited, receiving a specially crafted request created and sent by an attacker may lead to arbitrary code execution and/or a denial-of-service (DoS) condition. As for the details of affected product names and versions, refer to the information provided by the vendors under [References].

Affected Software

VendorProductVersion RangeStatus
Ricoh Company, Ltd.Multiple laser printers and MFPs which implement Web Image Monitorsee the information provided by the vendoraffected
KONICA MINOLTA, INC.Multiple MFPs which implement Web Image Monitorsee the information provided by the vendoraffected

Weaknesses

  • CWE-121: Stack-based buffer overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References